ποΈ ALERT_DETAILS_V View
This view provides detailed W5 information (such as process and machine details) about generated events (alerts).
ποΈ ALERT_EVIDENCE_V View
This view reports details about the evidence or observation details of individual events.
ποΈ ALERTS_V View
This view provides raw historic data about generated events (alerts). The AlertsV View provides metadata about the alert (including severity). For comprehensive details about the alert, see ALERTSDETAILS_V View.
ποΈ ALL_FILES_V View
This view provides raw historic data about files.
ποΈ APPLICATIONS_V View
This view provides the applications running on the machine with an agent installed with details (such as application name, user name, machine, etc.) within the last 90 days.
ποΈ CHANGE_FILES_V View
This view provides a historical summary of changed files with some aggregation. A file is βchangedβ when it is added or modified.
ποΈ CLOUD_COMPLIANCE_V View
This view contains details (such as compliance status, violated resources, reason, recommendation, account info, etc.) about compliance violations identified by Lacework cloud assessments that occurred within the last 90 days.
ποΈ CLOUD_CONFIGURATION_V View
This view reports details about supported and configured cloud resources.
ποΈ CLOUD_RESOURCES_V View
The CLOUDRESOURCESV view is now deprecated. Use CLOUDCONFIGURATIONV, which replaces this view.
ποΈ CMDLINE_V View
This view provides raw historic data about command line invocations.
ποΈ CONNECTIONS_V View
This view provides raw historic data about connections.
ποΈ CONTAINER_SUMMARY_V View
This view provides a historical summary of containers with some aggregation.
ποΈ CONTAINER_VULN_DETAILS_V View
This view provides container vulnerability assessment details (such as CVE ID, Image ID, Package info, fix info, etc.) about a discovered vulnerability in an Image within the last 90 days.
ποΈ DNS_QUERY_V View
This view provides raw historic data about DNS queries.
ποΈ HOST_VULN_DETAILS_V View
This view provides host vulnerability assessment details (such as CVE ID, Machine Id, Package info, fix info etc) about a discovered vulnerability in a host within the last 90 days.
ποΈ IMAGE_V View
This view provides details about the container image.
ποΈ INTERFACES_V View
This view provides raw historic data about network interfaces.
ποΈ INTERNAL_IPA_V View
This view provides a historical summary of internal IP addresses with some aggregation.
ποΈ MACHINE_DETAILS_V View
This view provides raw historic data about machines found in your environment.
ποΈ MACHINE_SUMMARY_V View
This view provides a historical summary of machines with some aggregation.
ποΈ NEW_HASHES_V View
This view provides a historical summary of new file hashes with some aggregation.
ποΈ PACKAGE_V View
This view provides raw historic data about the packages found in your environment.
ποΈ POD_SUMMARY_V View
This view provides a historical summary of pods with some aggregation. A pod is a collection of one or more running containers. For more information, see Pod Overview.
ποΈ PROCESS_SUMMARY_V View
This view provides a historical summary of processes with some aggregation.
ποΈ USER_DETAILS_V View
This view provides raw historic data about users.
ποΈ USER_LOGIN_V View
This view provides raw historic data about user login/logout activity.